$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: INl0dPkq2WNEj5GwIO9Nw1TcOhRUAY2qdisGM0J2eYk= Subject key identifier: F1:50:5E:B0:52:A0:EC:74:30:4F:88:8E:CC:66:99:01:E9:43:8D:DB Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 073ABE65C026C32C743482F9FCA2840CF0FBA787 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 20 Sep 2023 02:00:00 +0000 ROA not before: Wed 20 Sep 2023 01:55:00 +0000 ROA not after: Wed 18 Sep 2024 02:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 06:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3a:be:65:c0:26:c3:2c:74:34:82:f9:fc:a2:84:0c:f0:fb:a7:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Sep 20 01:55:00 2023 GMT Not After : Sep 18 02:00:00 2024 GMT Subject: CN=F1505EB052A0EC74304F888ECC669901E9438DDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:65:53:7f:87:47:c8:24:49:35:cf:d7:f0:ff: 2c:d9:a0:88:73:10:f8:1c:c8:99:c1:11:2b:12:53: cc:6e:81:d4:e4:b6:c0:4b:97:48:5d:9a:75:0a:d0: bd:be:b0:a8:cd:29:cb:b8:9b:bc:9a:b4:06:87:f3: 88:d8:5f:67:75:cd:09:38:a2:e5:01:8b:03:1a:2d: f7:4c:b9:ec:2e:a8:9e:51:c9:c4:3e:5b:e9:97:fc: d4:0e:f4:0a:3a:c7:97:1e:b6:b8:aa:4a:65:22:dc: bf:2d:1e:0a:ab:22:2f:9d:39:17:94:e9:5b:a9:c9: c2:a8:ef:40:68:b5:5c:3c:e5:18:2c:d3:50:6d:4c: cf:6d:83:51:7f:2c:63:89:76:bf:0a:13:db:f7:c9: 41:f9:e4:85:91:b0:95:9c:32:2b:63:b4:16:cf:ed: 49:4e:1f:9b:34:6d:8f:fe:b8:17:c1:df:fa:ea:87: a3:ab:39:0e:aa:0b:bb:a5:2d:af:f6:7c:18:76:2a: a6:db:26:c3:5b:cd:43:9c:f2:60:15:5c:53:e6:17: 0b:52:58:73:af:ae:0d:85:72:d6:75:b4:be:d9:02: 48:f0:9c:9b:19:50:85:7a:a9:93:0e:6f:9b:07:27: 73:e0:6f:cc:5e:f4:d5:ff:25:d6:58:e7:b9:cc:25: b9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:50:5E:B0:52:A0:EC:74:30:4F:88:8E:CC:66:99:01:E9:43:8D:DB X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:c000::/34 Signature Algorithm: sha256WithRSAEncryption 02:b8:00:45:1b:8a:37:1a:c2:eb:4a:e2:6c:d8:e9:5f:cb:4f: da:c5:10:c2:f7:49:9e:ef:ba:b5:f3:8d:da:2b:15:43:1e:61: 42:22:3b:9a:fc:0f:7f:2c:a7:5b:2e:3d:2f:bc:63:d9:9b:3b: 50:5c:74:a6:db:78:f3:62:f2:0d:6d:c8:98:39:61:71:18:37: d0:e2:b3:c6:a8:71:7e:92:35:6e:a2:b3:25:0d:71:12:ec:6d: b8:e5:c9:0a:84:c3:c4:71:8a:a5:da:60:bd:b3:39:e0:3c:44: c7:ad:0f:83:e3:82:63:00:7c:48:3a:23:88:c9:72:62:cf:e2: ea:d6:e0:93:ca:d7:8a:f0:20:65:cc:1f:65:cd:0e:15:e7:97: a4:39:3e:d8:70:a4:22:90:e6:3c:15:45:1f:79:4a:d9:b6:ee: 9f:3d:a8:19:1c:0d:7f:2a:44:5d:e5:30:8e:0f:91:dd:e8:19: e5:08:71:b0:97:4e:c3:aa:54:c2:e3:d5:0d:36:75:ec:9d:49: 07:3d:d1:aa:b2:ab:73:62:51:ca:20:56:b9:32:15:6f:ab:1b: 2c:5e:04:68:b3:bb:d8:0a:c9:e9:b4:02:33:ec:ad:4a:2a:80: 4b:ef:1d:98:59:46:9c:b1:19:2a:c1:3c:14:30:6d:15:e3:7c: 5b:1e:68:d9 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUBzq+ZcAmwyx0NIL5/KKEDPD7p4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yMzA5MjAwMTU1MDBaFw0yNDA5MTgwMjAwMDBaMDMxMTAvBgNV BAMTKEYxNTA1RUIwNTJBMEVDNzQzMDRGODg4RUNDNjY5OTAxRTk0MzhEREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjZVN/h0fIJEk1z9fw/yzZoIhz EPgcyJnBESsSU8xugdTktsBLl0hdmnUK0L2+sKjNKcu4m7yatAaH84jYX2d1zQk4 ouUBiwMaLfdMuewuqJ5RycQ+W+mX/NQO9Ao6x5cetriqSmUi3L8tHgqrIi+dOReU 6VupycKo70BotVw85Rgs01BtTM9tg1F/LGOJdr8KE9v3yUH55IWRsJWcMitjtBbP 7UlOH5s0bY/+uBfB3/rqh6OrOQ6qC7ulLa/2fBh2KqbbJsNbzUOc8mAVXFPmFwtS WHOvrg2FctZ1tL7ZAkjwnJsZUIV6qZMOb5sHJ3Pgb8xe9NX/JdZY57nMJbkPAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU8VBesFKg7HQwT4iOzGaZAelDjdswHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk Ar6AwDANBgkqhkiG9w0BAQsFAAOCAQEAArgARRuKNxrC60ribNjpX8tP2sUQwvdJ nu+6tfON2isVQx5hQiI7mvwPfyynWy49L7xj2Zs7UFx0ptt482LyDW3ImDlhcRg3 0OKzxqhxfpI1bqKzJQ1xEuxtuOXJCoTDxHGKpdpgvbM54DxEx60Pg+OCYwB8SDoj iMlyYs/i6tbgk8rXivAgZcwfZc0OFeeXpDk+2HCkIpDmPBVFH3lK2bbunz2oGRwN fypEXeUwjg+R3egZ5QhxsJdOw6pUwuPVDTZ17J1JBz3RqrKrc2JRyiBWuTIVb6sb LF4EaLO72ArJ6bQCM+ytSiqAS+8dmFlGnLEZKsE8FDBtFeN8Wx5o2Q== -----END CERTIFICATE-----Generated at Wed Apr 24 06:27:08 2024 by rpki-client on console-ams.rpki-client.org